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DETAILED ACTION 

1. An amendment was received on 13 January 2005. Claims 1-3, 6, 8, 9, 14, 17, 
and 21-23 have been amended. No claims have been added or canceled. Claims 1-23 
are currently pending in the present application. 

Response to Arguments 

2. Applicant's arguments with respect to claims 1-23 have been considered but are 
moot in view of the new ground(s) of rejection. 

Claim Objections 

3. Claims 2 and 9 are objected to because of the following informalities: 

In Claims 2 and 9, in the limitation "and incorporates, said encrypted address 
portion", the comma after "incorporates" should be deleted. 

In Claim 9, in the limitation "provides a key supporting decryption of said 
encrypted address portion, to a destination system", the comma after "portion" should 
be deleted. 

Appropriate correction is required. 
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Claim Rejections - 35 USC §112 

4. The rejection of Claims 8 and 17 under 35 U.S.C. 112, second paragraph, set 
forth in the previous Office action, is withdrawn in light of the amendment to the claims. 

5. The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

6. Claims 2-5, 9, and 1 1 are rejected under 35 U.S.C. 112, second paragraph, as 
being indefinite for failing to particularly point out and distinctly claim the subject matter 
which applicant regards as the invention. 

Claims 2-4 and 1 1 each recite the limitation "said communication processor". 
However, Claims 1 and 6 recite the limitation "at least one communication processor"; 
therefore, if there is more than one communication processor, it is unclear to which of 
the processors the limitation of Claims 2-4 and 1 1 refers. This renders the claims 
indefinite. 

Claims 2 and 9 recite the limitation "said address portion". There is insufficient 
antecedent basis for this limitation in the claims. 

Claim 5 is rejected due to its dependence on rejected Claim 4. 



Application/Control Number: 09/817,324 
Art Unit: 2137 



Page 4 



Claim Rejections - 35 USC § 103 

7. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

8. Claims 1-23 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Cohen et al, US Patent 617851 1 , in view of Levergood et al, US Patent 5708780. 

In reference to Claim 1 , Cohen discloses a system used by a first application 
including an authentication processor (Figure 2, Authentication Module 21) that receives 
user identification information and initiates authentication of the user identification 
information using an authentication service (column 6, lines 8-18) and a communication 
processor that communicates an authentication service identifier and a corresponding 
user identifier to a managing application (column 6, lines 26-37). However, Cohen does 
not explicitly disclose automatically communicating context information in a data field of 
a URL to a second application in response a user command to initiate execution of the 
second application. 

Levergood discloses a system that includes an authentication processor (column 
6, lines 36-42) and that, when a user requests execution of a second application, 
automatically communicates specific context information in a data field of a URL to the 
second application (see column 4, lines 1-18). Therefore, it would have been obvious to 
one of ordinary skill in the art at the time the invention was made to modify the system 
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of Cohen by including the automatic communication described by Levergood, in order to 
allow access to all controlled files within a specific domain without requiring additional 
authorization beyond the initial authorization (see Levergood, column 3, lines 50-55). 

In reference to Claim 2, Cohen further discloses the use of a user identifier 
(column 4, line 64-column 5, line 2). Further, Levergood discloses that the specific 
context information is a user identifier (column 5, lines 56-61) and that a URL address 
portion is encrypted and incorporated into the URL (column 5, lines 61-65; column 3, 
lines 34-37, noting that the SID includes a domain that is included under the digital 
signature). 

In reference to Claim 3, Cohen further discloses that the user identification 
information includes a password (column 4, line 64-column 5, line 2). Further, 
Levergood discloses the use of a password (column 6, lines 47-49) and the use of a 
session identifier (see column 3, lines 12-16, where SID is a session identifier). 

In reference to Claims 4 and 5, Cohen further discloses compiling a database 
accessible to other applications for mapping a user identifier of one application to an 
already authenticated user identifier of another application (column 4, line 61 -column 5, 
line 6, and column 5, lines 16-22; also noting column 5, lines 45-58, where the database 
can be updated dynamically). 

In reference to Claim 6, Cohen discloses a system including an authentication 
processor that receives and compiles into a database pairs of authentication service 
identifiers and user identifiers (column 4, line 61 -column 5, line 6) and maps a user 
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identifier of a second application to an already authenticated user identifier of a first 
application (column 6, lines 26-37). Cohen further discloses a communication 
processor that sends the authenticated user identifier to the second application (column 
6, lines 38-45). However, Cohen does not explicitly disclose automatically 
communicating context information in a data field of a URL to the second application in 
response a user command to initiate execution of the second application. 

Levergood discloses a system that includes an authentication processor (column 
6, lines 36-42) and that, when a user requests execution of a second application, 
automatically communicates specific context information in a data field of a URL to the 
second application (see column 4 ( lines 1-18). Therefore, it would have been obvious to 
one of ordinary skill in the art at the time the invention was made to modify the system 
of Cohen by including the automatic communication described by Levergood, in order to 
allow access to all controlled files within a specific domain without requiring additional 
authorization beyond the initial authorization (see Levergood, column 3 t lines 50-55). 

In reference to Claim 7, Cohen further discloses identifying an authentication 
service that provides an authenticated user identifier (column 4, lines 48-50). 

In reference to Claim 8, Cohen further discloses matching the authentication 
service identifier of the second application with the authentication service identifier of 
the first application (column 6, lines 26-37). 

In reference to Claim 9, Levergood further discloses the use of a session 
identifier (see column 3, lines 12-16, where SID is a session identifier) and that a URL 
address portion is encrypted and incorporated into the URL (column 5, lines 61-65; 
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column 3, lines 34-37, noting that the SID includes a domain that is included under the 
digital signature). Levergood additionally discloses that a key allowing for decryption is 
accessible to multiple applications (column 5, lines 61-65, where the key is shared by 
the authentication and content servers). 

In reference to Claim 10, Cohen further discloses that the authenticated user 
identifier of the first application is used by the second application (column 6, lines 38- 
45), thus eliminating the need for the second application to authenticate the user 
(column 2, lines 28-31). 

In reference to Claim 11, Cohen further discloses sending a parameter identifying 
success or failure of the mapping (column 10, lines 35-37, where the return codes 
indicate success or failure of an operation). 

In reference to Claim 12, Cohen further discloses that the authentication 
processor receives an authentication service identifier and user identifier from the first 
application (column 6, lines 13-29). 

In reference to Claim 13, Cohen further discloses that the authentication service 
identifier employs a predetermined data format (column 5, lines 30-44, and column 5, 
line 63-column 6, line 7). 

In reference to Claim 14, Cohen discloses a system including an authentication 
processor that receives an authentication service identifier and a user identifier from a 
parent application (column 4, line 61 -column 5, line 6) and maps a user identifier of a 
child application to an already authenticated user identifier of the parent application 
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(column 6, lines 26-37). Cohen further discloses a communication processor that 
communicates the authenticated user identifier to the child application (column 6, lines 
38-45). However, Cohen does not explicitly disclose automatically communicating 
context information in a data field of a URL to the child application in response a user 
command to initiate execution of the child application. 

Levergood discloses a system that includes an authentication processor (column 
6, lines 36-42) and that, when a user requests execution of a second (child) application, 
automatically communicates specific context information in a data field of a URL to the 
second application (see column 4, lines 1-18). Therefore, it would have been obvious to 
one of ordinary skill in the art at the time the invention was made to modify the system 
of Cohen by including the automatic communication described by Levergood, in order to 
allow access to all controlled files within a specific domain without requiring additional 
authorization beyond the initial authorization (see Levergood, column 3, lines 50-55). 

In reference to Claim 15, Cohen further discloses that the parent application 
begins a session and the child application uses the authentication system to join the 
session (column 6, lines 38-45). Levergood further discloses a session (note column 3, 
lines 12-16, where a session is identified by SID). 

In reference to Claim 16, Cohen further discloses that the authentication 
processor compiles a database using pairs of authentication service identifiers and 
corresponding user identifiers (column 4, line 61 -column 5, line 6) and uses the 
database in mapping the user identifier of the child application to the already 
authenticated user identifier of the parent application (column 6, lines 26-37). 
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In reference to Claim 17, Cohen further discloses matching the authentication 
service identifier of the child application with the authentication service identifier of the 
parent application (column 6, lines 26-37). 

In reference to Claim 18, Cohen further discloses identifying an authentication 
service that provides an authenticated user identifier (column 4, lines 48-50). 

In reference to Claim 19, Cohen further discloses that the authenticated user 
identifier of the parent application is used by the child application (column 6, lines 38- 
45), thus eliminating the need for the child application to authenticate the user (column 
2, lines 28-31). 

In reference to Claim 20, Cohen further discloses that the child application 
enables access in response to receiving the authenticated user identifier without the 
user re-entering the user identification information (column 2, lines 28-31 , and column 6 t 
lines 38-45). 

Claims 21 and 22 are method claims that correspond substantially to the systems 
of claims 14 and 16 respectively, and are rejected by a similar rationale. 

Claim 23 is a method claim that corresponds substantially to the system of claim 
1, and is accordingly rejected by a similar rationale. 



Application/Control Number: 09/817,324 
Art Unit: 2137 



Page 10 



Conclusion 

9. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

a. Berman et al, US Patent 5995939, discloses a system that includes 
encrypting messages containing patient specific information. 

10. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Zachary A. Davis whose telephone number is (571 ) 272- 
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3870. The examiner can normally be reached on weekdays 8:30-6:00, alternate 
Fridays off. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Andrew Caldwell can be reached on (571) 272-3868. The fax phone 
number for the organization where this application or proceeding is assigned is 703- 



Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



872-9306. 
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ANDREW CALDWELL 
SUPERVISORY PATENT EXAMINER 



